Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libarchive vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-5601
An error in the lha_read_file_header_1() function (archive_read_support_format_lha.c) in libarchive 3.2.2 allows remote malicious users to trigger an out-of-bounds read memory access and subsequently cause a crash via a specially crafted archive.
Libarchive Libarchive 3.2.2
9.3
CVSSv2
CVE-2016-4736
libarchive in Apple OS X prior to 10.12 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted file.
Apple Mac Os X
5
CVSSv2
CVE-2016-4809
The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive prior to 3.2.1 allows remote malicious users to cause a denial of service (application crash) via a CPIO archive with a large symlink.
Redhat Enterprise Linux Hpc Node 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Hpc Node Eus 7.2
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Hpc Node 7.0
Redhat Enterprise Linux Server Aus 7.2
Oracle Linux 6
Oracle Linux 7
Libarchive Libarchive
4.3
CVSSv2
CVE-2015-8915
bsdcpio in libarchive prior to 3.2.0 allows remote malicious users to cause a denial of service (invalid read and crash) via crafted cpio file.
Libarchive Libarchive
8.8
CVSSv2
CVE-2015-6984
libarchive in Apple OS X prior to 10.11.1 allows malicious users to write to arbitrary files via a crafted app that conducts an unspecified symlink attack.
Apple Mac Os X
6.4
CVSSv2
CVE-2015-2304
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and previous versions allows remote malicious users to write to arbitrary files via a full pathname in an archive.
Libarchive Libarchive
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
5
CVSSv2
CVE-2013-0211
Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and previous versions, when running on 64-bit machines, allows context-dependent malicious users to cause a denial of service (crash) via unspecified vectors, whi...
Libarchive Libarchive
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 13.1
Canonical Ubuntu Linux 14.10
Opensuse Opensuse 13.2
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Freebsd Freebsd 9.3
5
CVSSv2
CVE-2013-4668
Directory traversal vulnerability in File Roller 3.6.x prior to 3.6.4, 3.8.x prior to 3.8.3, and 3.9.x prior to 3.9.3, when libarchive is used, allows remote malicious users to create arbitrary files via a crafted archive that is not properly handled in a "Keep directory str...
File Roller Project File Roller
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.04
7.5
CVSSv2
CVE-2010-4666
Buffer overflow in libarchive 3.0 pre-release code allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CAB file, which is not properly handled during the reading of Huffman code data within LZX com...
Freebsd Libarchive 3.0
6.8
CVSSv2
CVE-2011-1777
Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive up to and including 2.8.5 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via...
Freebsd Libarchive 2.8.3
Freebsd Libarchive 2.8.2
Freebsd Libarchive 2.6
Freebsd Libarchive 2.5
Freebsd Libarchive 2.4
Freebsd Libarchive 2.7.1
Freebsd Libarchive 2.7.0
Freebsd Libarchive 2.1
Freebsd Libarchive 2.0
Freebsd Libarchive 2.8.4
Freebsd Libarchive 2.6.2
Freebsd Libarchive 2.6.1
Freebsd Libarchive
Freebsd Libarchive 2.2.3
Freebsd Libarchive 2.8.1
Freebsd Libarchive 2.8.0
Freebsd Libarchive 2.3
Freebsd Libarchive 2.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »